Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.2 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2014-8827
LoginWindow in Apple OS X prior to 10.10.2 does not transition to the lock-screen state immediately upon being woken from sleep, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X
10
CVSSv2
CVE-2014-8836
The Bluetooth driver in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (arbitrary-size bzero of kernel memory) via a crafted app.
Apple Mac Os X
6.8
CVSSv2
CVE-2014-8830
Heap-based buffer overflow in SceneKit in Apple OS X prior to 10.10.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted accessor element in a Collada file.
Apple Mac Os X
2.1
CVSSv2
CVE-2014-8833
SpotlightIndex in Apple OS X prior to 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.
Apple Mac Os X
5
CVSSv2
CVE-2014-8831
security_taskgate in Apple OS X prior to 10.10.2 allows malicious users to read group-ACL-restricted keychain items of arbitrary apps via a crafted app with a signature from a (1) self-signed certificate or (2) Developer ID certificate.
Apple Mac Os X
4.7
CVSSv2
CVE-2014-4498
The CPU Software in Apple OS X prior to 10.10.2 allows physically proximate malicious users to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Apple Mac Os X
4.7
CVSSv2
CVE-2014-8823
The IOUSBControllerUserClient::ReadRegister function in the IOUSB controller in IOUSBFamily in Apple OS X prior to 10.10.2 allows local users to read data from arbitrary kernel-memory locations by leveraging root access and providing a crafted first argument.
Apple Mac Os X
4.3
CVSSv2
CVE-2014-8130
The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_...
Libtiff Libtiff 4.0.3
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 6.0
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9.5
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.2
Apple Mac Os X 10.10.3
Apple Iphone Os
10
CVSSv2
CVE-2014-8822
IOHIDFamily in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a kernel context or cause a denial of service (write to kernel memory) via a crafted app that calls an unspecified user-client method.
Apple Mac Os X
4.3
CVSSv2
CVE-2014-8838
The Security component in Apple OS X prior to 10.10.2 does not properly process cached information about app certificates, which allows malicious users to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted a...
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »